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PROBLEM TO BE SOLVED: To provide a user 
authentication system high in security and capable of 
obtaining the result speedily and to provide a user certificate 
and a user authentication device to be used for the system. 
SOLUTION: Biological feature data such as choreography or 
voiceprint for distinguishing the individual of a user 8 are 
acquired, a user certificate 7 recording at least one part of 
these biological feature data is issued and by comparing the 
recorded contents of the user certificate 7 read by a certificate 
reader 41 with the biological feature data of the user inputted 
to a certification acquiring device, the user is directly certified 
at a certification utilizing spot 4. Besides, high-order 
certification stations 2 and 3 are provided, all the biological 
information of the user is not recorded on the user certificate 7 
but the remaining part is recorded for each certification station 
and by additionally performing the certification while 
comparing the parts of the recorded biological feature data in 
response to the reference at the authentication utilization spot 
4, the reliability of authentication can be improved. 
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* NOTICES *■ 

JPO and NCIPI are not responsible for any 
damages caused by the use of this translation. 

LThis document has been translated by computer. So the translation may not reflect the original 
precisely. 

2 **** s h ows the word which can not be translated. 
3. In the drawings, any words are not translated. 



CLAIMS 



[Claim(s)] 

[Claim 1] The registration place equipped with the information incorporation equipment which acquires 
the biological description data which distinguish a user's individual, The authentication vote publishing 
office which publishes the user authentication vote which recorded a part of the biological description 
data [ at least ] to this user, It is the user authentication system which comes to have the authentication 
use place in which the **** acquisition equipment which inputs the authentication vote reader and a 
user's biological description data which read the information on this user authentication vote was 
formed. By comparing said user's biological description data inputted into the contents of record of a 
user authentication vote and the aforementioned people certificate acquisition equipment which are read 
with said authentication vote reader in this authentication use place The user authentication system 
characterized by attesting that this user is the just owner of this user authentication vote. 
[Claim 2] The registration place equipped with the information incorporation equipment which acquires 
the biological description data which distinguish a user's individual, The authentication vote publishing 
office which publishes the user authentication vote which recorded a part of the biological description 
data [ at least ] to this user, It is the user authentication system which comes to have the authentication 
use place in which the **** information write-in equipment which inputs the **** acquisition 
equipment which acquires a user's biological description data, and the this acquired biological 
description data into said user authentication vote was formed. By comparing said user's biological 
description data acquired with the contents of the biological description data and the aforementioned 
people certificate acquisition equipment which were recorded on said user authentication vote using the 
calculation function of said user authentication vote The user authentication system characterized by 
attesting that this user is the just owner of this user authentication vote. 

[Claim 3] Said user authentication system is equipped with at least one certificate authority further 
connected by said authentication use place and information channel. The part which is not recorded on 
said user authentication vote among a user's biological description data acquired in said registration 
place is recorded on this certificate authority. The user authentication system according to claim 1 or 2 
characterized by comparing the part of the biological description data which run short in said user 
authentication vote in response to the enquiry from said authentication use place, and making it attest. 
[Claim 4] The information passed to said information channel is a user authentication system according 
to claim 3 characterized by enciphering. 

[Claim 5] The user authentication system according to claim 3 or 4 characterized by said two or more 
certificate authorities dividing and recording the part which is not recorded on said user authentication 
vote among a user's biological description data acquired in said registration place, comparing the part of 
the biological description data which self memorizes in response to the enquiry from said authentication 
use place or other certificate authorities for every certificate authority, and making it attest. 
[Claim 6] The user authentication system according to claim 1 to 5 characterized by having the 
certificate authority which formed the storage which records a user's biological description data which 
said user authentication system acquired in said registration place. 
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[Claim 7] The user authentication system according to claim 6 characterized by the ability of the storage 
which recorded the biological description data in said certificate authority to separate from the 
information channel of this user authentication system. 

[Claim 8] A user authentication system given in either of claims 1-7 characterized by said biological 
description data being a hand. 

[Claim 9] A user authentication system given in either of claims 1-8 characterized by conducting the 
dealings which register two or more things as said biological description data, and change with inputted 
data. 

[Claim 10] The user authentication vote which consists of a storage equipped with the storage region 
which recorded some biological description data [ at least ] which are the user authentication vote which 
can be used for a user authentication system given in either of claims 1-9, and distinguish the individual 
of the signal and user who identify an identification tag, and in which read-out is possible. 
[Claim 1 1] The user authentication vote according to claim 10 characterized by furthermore having CPU 
and RAM. 

[Claim 12] The user authentication vote according to claim 10 or 11 characterized by said storage being 
a magnetic-recording medium. 

[Claim 13] The user authentication vote according to claim 10 or 1 1 characterized by said storage being 
an IC card. 

[Claim 14] User-authentication equipment equipped with the judgment equipment which compares said 
user f s biological description data inputted into the authentication vote reader which reads the 
information recorded on a user- authentication vote, the **** acquisition equipment which input a user's 
biological description data, and the biological description data and the aforementioned people certificate 
acquisition equipment which are recorded on the user-authentication vote which read with said 
authentication vote reader, and judges success or failure, and the display which output a judgment result. 

[Claim 15] User authentication equipment according to claim 14 characterized by the aforementioned 
people certificate acquisition equipment being what has a freehand drawing form incorporation function. 

[Claim 16] Furthermore, user authentication equipment according to claim 15 or 16 characterized by 
having the communication device which transmits some a user's biological description data [ at least ] 
inputted into **** acquisition equipment to an external certificate authority, and receives the judgment 
result of success or failure, and displaying a judgment result through said display. 



[Translation done.] 
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DETAILED DESCRIPTION 



[Detailed Description of the Invention] 
[0001] 

[Field of the Invention] This invention relates to the user authentication system for performing personal 
authentication in electronic information interchange or electronic commerce, the user authentication vote 
used for this, and user authentication equipment. 
[0002] 

[Description of the Prior Art] In recent years, the class of information accessed through a 
communication network is becoming Oshi extremely, and as well as electronic commerce, such as 
dealing of goods and a credit, perusal of the registration matter in the online diagnostics in medicine, an 
individual clinical recording, and a public office, issue of certification, etc. also increase an object 
increasingly, and it is in the inclination for use to progress. 

[0003] When there is no guarantee of not revealing to others with respect to privacy in such individual 
information, there are not few things which should accept use and it is supposed that are not come out. 
In order to incorporate development of an electronic intelligence communication network and to build a 
more convenient information society, the user authentication method with the high dependability which 
can distinguish an individual sharply is called for. Moreover, the device which attests an individual 
correctly is applicable also to the locking equipment which restricts ingress other than the rating person 
in a lab, a place of business, or a residence, and the improvement in security of cybermoney. 
[0004] Conventionally, the password has been best used for user authentication. Although the password 
is simple, those who use others' password by stealth and become him completely cannot be eliminated. 
For this reason, the suitable cautions of choosing the password which is hard to guess, sometimes 
changing a password, etc. which use a long password tend to be carried out, and it is going to secure 
safety. Moreover, it is also performed widely that others take care not to know the contents easily even if 
it makes the contents of a communication link secret using encoding technology and there is leakage of 
data, in order to secure the safety in a communication link process. 

[0005] however — still - communicative tapping and decode of a cipher — stealing — seeing — etc. - a 
password may be stolen and it cannot change with a completely safe thing. Moreover, there is a fault to 
which it becomes difficult for the user itself to memorize it correctly, so that a password is complicated. 
Even if it is data complicated still more essential however, there is a property to become possible to 
reproduce with a certain means from the moment that it is stored as digital data. 
[0006] In order to prevent spoofing and to attest certainly that he is him, how to carry out user 
authentication using the information showing the so-called biological descriptions, such as a fingerprint 
and a voiceprint, is also examined. However, generally, since the biological description data have large 
amount of information, huge traffic must be exchanged between the use site which needs authentication, 
and the certificate authority which is accumulating a user's living thing-information. Therefore, it is 
difficult to put in practical use except in the case in a special environment because of the congestion of a 
channel, or huge-izing of communication link time amount, and the problem was in the management 
location and management method of the data. 
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[0007] 

[Problem(s) to be Solved by the Invention] Then, the technical problem which this invention tends to 
solve is that the safety for performing personal authentication in electronic information interchange or 
electronic commerce offers the user authentication vote and user authentication equipment with which it 
is used for this with the user authentication system from which a result is obtained quickly highly. 
[0008] 

[Means for Solving the Problem] In order to solve the above-mentioned technical problem, the user 
authentication system of this invention The registration place equipped with the information 
incorporation equipment which acquires the biological description data which distinguish a user's 
individual, The authentication vote publishing office which publishes the user authentication vote which 
recorded a part of the biological description data [ at least ] to the user, It has the authentication use 
place in which the authentication vote reader which reads the information on a user authentication vote, 
and the **** acquisition equipment which acquires a user's biological description data were formed. It is 
characterized by carrying out user authentication by comparing a user's biological description data 
acquired with the contents of record and **** acquisition equipment of the user authentication vote read 
with the authentication vote reader of an authentication use place. 

[0009] Moreover, the 2nd user authentication system of this invention The registration place equipped 
with the information incorporation equipment which acquires a user ? s biological description data, The 
authentication vote publishing office which publishes the user authentication vote which recorded a part 
of the biological description data [ at least ] to the user, It has the authentication use place in which the 
**** information write-in equipment which inputs the **** acquisition equipment which acquires a 
user's biological description data, and the acquired biological description data into a user authentication 
vote was formed. It is characterized by attesting that he is the just owner of a user authentication vote by 
comparing a user's biological description data acquired with the contents and **** acquisition 
equipment of the biological description data currently recorded using the arithmetic unit of a user 
authentication vote. 

[0010] The user authentication system of these this inventions is further equipped with at least one 
certificate authority connected by the authentication use place and the information channel. Except for 
some a user's biological description data acquired in the registration place, it records on the user 
authentication vote. It is desirable to record the part which is not recorded on a user authentication vote 
on the certificate authority, to compare the part of the biological description data which run short in a 
user authentication vote in response to the enquiry from an authentication use place, and to make it 
attest. In addition, as for the information mutually exchanged through an information channel, it is 
desirable to encipher and to guarantee safety. 

[001 1] Moreover, it is more desirable for there to be two or more certificate authorities, to divide and 
record the part which is not recorded on a user authentication vote among a user's biological description 
data acquired in the registration place, to compare the part of the biological description data which self 
memorizes in response to the enquiry from an authentication use place or other certificate authorities for 
every certificate authority, and to make it attest. Furthermore, a user authentication system may be 
equipped with the certificate authority which formed the storage which records a user's biological 
description data acquired in the registration place. Moreover, as for the storage which recorded the 
biological description data in a certificate authority, it is desirable that it can separate now from the 
information channel of a user authentication system. In addition, a hand may be used as biological 
description data. 

[0012] The user authentication system of this invention uses the user authentication vote which recorded 
some biological description data [ at least ] which distinguish a user's individual, and since user 
authentication is carried out by comparing the biological description data and the biological description 
data of a user authentication vote which the user inputted and it cannot pass an authentication test if it is 
not the user itself, it can prevent spoofing by theft of a password. 

[0013] Moreover, being very difficult and since others cannot reproduce the biological description even 
if restoration is possible, restoring the original biological description data from the digital-data-ized 
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biological description data has the very high dependability of user authentication. Since the biological 
description data for enquiry are especially recorded on the user authentication vote, even if I do not have 
user authentication carried out by the remote certificate authority, in the authentication use place which 
needs authentication, it can check directly that he is him. For this reason, it is not necessary to spend 
great time amount and costs on the communication link with a certificate authority. 
[0014] In addition, although user authentication can also perform contrast with the biological description 
data of the user who made it input in the biological description data and the authentication use place for 
the enquiry recorded on the user authentication vote with the arithmetic and logic unit formed in the 
authentication use place It has calculation functions, such as CPU and RAM, in a user authentication 
vote, and you may make it contrast with the information which inputs the biological description data 
acquired from the user who is going to use a user authentication vote, and is recorded. The burden of an 
authentication use place shall be mitigated, equipment cost shall be reduced, and it shall be easy to use 
as a system by utilizing the user authentication vote which has advanced functions, such as an IC card. 
Moreover, by completing information processing within a user authentication vote in this way, it can 
prevent revealing authentication data to the exterior of an authentication vote, and safety can be raised. 
[0015] Furthermore, the remaining part which is not recorded on a user authentication vote among a 
user's biological description data is recorded on the certificate authority connected by the authentication 
use place and the information channel. When comparing the part of the biological description data in 
response to the enquiry from an authentication use place and making it attest Since required information 
is divided and memorized, even if it restores the biological description data from the data recorded, for 
example on the authentication vote, it cannot break through an authentication system, and the data used 
for authentication from an authentication vote cannot be reproduced, either. Moreover, since the 
information in a certificate authority is preserved even if it alters the contents of storage of an 
authentication vote, others 1 spoofing can be eliminated. Or since it cannot alter again to the information 
on the user authentication vote which a user owns also when a certificate authority is attacked, it is safe. 
In addition, if the information passed to an information channel is enciphered, since it is hard to decode 
even if there are those who steal information in the middle of a channel, safety will improve. 
[0016] Moreover, a user's biological description data are divided and recorded by the user authentication 
vote and two or more certificate authorities. To the user authentication based on the information on a 
user authentication vote, in addition, when the part of the biological description data memorized in 
response to the enquiry from an authentication use place or other certificate authorities for every 
certificate authority is compared and it is made to attest For example, dependability of user 
authentication can be made higher by acquiring gradually the user authentication of the certificate 
authority organized hierarchical. 

[0017] In addition, in the user authentication system of this invention, even if it chooses making a 
success-or- failure decision according to the grade of the authentication dependability demanded by the 
authentication of only an authentication use place based on the information recorded on the user 
authentication vote, the authentication in one piece or two or more certificate authorities which seasoned 
the user authentication vote with the information which is not recorded may be added, and a more 
positive judgment may be chosen. For example, to not performing user authentication so carefully 
[ when trading in the goods of a small amount ], to treat large sum goods, a more advanced guarantee is 
required, and to treat the thing concerning advanced privacy like the clinical recording of a hospital, it is 
necessary to check whether it is his claim certainly. 

[0018] The level to the safety of such authentication may be beforehand decided an authentication use 
place and for dealings, and may be set up for every dealings in an authentication use place. Furthermore, 
in connection with a dealings price etc., it chooses automatically, and you may enable it to set up. 
Moreover, even when performing user authentication using all of the biological description data even if, 
in order that most may attest in an authentication use place using the information in a user authentication 
vote according to this information-sharing method, since the amount of information exchanged through 
a communication circuit is an element, its communication circuit capacity may also be small and there is 
also little time amount which enquiry takes again. In addition, dividing information has the effectiveness 
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which controls the demand of the throughput in the certificate authority which accumulates information 
about many users and must process much enquiry, or storage capacity. 

[0019] Furthermore, it has the qualification registration authority which formed the storage which 
records a user's biological description data acquired in the registration place on a user authentication 
system. It can use for repair of the data of a recurrence line when the judgment of the location where a 
certain unauthorized use and abnormalities occurred, or an authentication vote is damaged, and a low- 
ranking certificate authority etc. by recording the whole picture of a user's biological description data 
acquired in the registration place. 

[0020] Moreover, if it is made for the storage which recorded the biological description data in a 
qualification registration authority to use it, connecting [ enabling it to separate from the information 
channel of a user authentication system, and ] only when required, it can prevent individual humanity 
news being revealed by a hacker's invasion etc., or being altered. In addition, it is very effective in order 
for recording only the respectively partial biological description data on the certificate authority of a 
user authentication vote or low order, and making it not leave perfect record to secure safety. 
[0021] A hand may be used as biological description data used by the user authentication system of this 
invention. A hand expresses the individual biological description well, and others 1 spoofing is difficult 
for it, and it has the advantage that the equipment to input and which is equipment [ equipment ] and 
analyzed is obtained comparatively easily. In order to identify a user, it is easy to be suitable [ the 
alphabetic character or graphic form which are written and got ], but since the sign showing a self name 
etc. has good repeatability, it cannot be overemphasized that it is desirable. Moreover, in addition to this, 
there are a pattern of a fingerprint, palm print and a voiceprint, the iris, or a retina, DNA information, 
etc. in the available biological description data. The biological description which can be recognized 
more certainly and easily may be found out from now on also. 

[0022] In addition, when dividing and recording the biological description data by the user 
authentication vote and the certificate authority Information data are divided physically and a part for 
the first portion is recorded on a user authentication vote, and a part is recorded on a certificate authority 
and you may make it collate it in the second half. Moreover, methods of catching information 
hierarchical and dividing it, such as recording the configuration information on a hand on a user 
authentication vote, for example, and recording writing pressure information and order-of-making- 
strokes-in-writing-a-Chinese-character information on a certificate authority, may be used. Furthermore, 
it is also possible to raise dependability by judging two or more biological description data, such as a 
sign and' a voiceprint, based on the information on a class which records separately and is different, 
respectively. 

[0023] In addition, you may constitute so that the dealings which register two or more things as 
biological description data, and change with inputted data may be conducted. If the information which 
gave special implications is compounded besides the biological description data of normal, and it is 
made to use, and it will hide in somewhere in signs and a notation will be added when it lapses into the 
situation which is threatened by others and cannot but sign against volition, for example, it can also be 
made the structure of pretending to sign the extortion person obediently and notifying a security 
company in fact. 

[0024] In addition, as selection of system style Chikujo, since the insurance on a human body is secured 
in such a case, things made to look like dealings being materialized ordinarily, such as closing motion of 
a door and a drawer of cash, are also possible. Of course, the biological description data used for such a 
purpose may be the thing of the same class as a formal thing, and may compound the thing of a class 
which is [ add /, for example to a sign / voice data ] different. Moreover, it is good conversely also 
considering what added specific agreement data to false data as formal data for authentication. 
[0025] In addition, in order to solve the above-mentioned technical problem, the user authentication vote 
of this invention is characterized by consisting of a storage equipped with the storage region which 
recorded some biological description data [ at least ] which distinguish the individual of the signal and 
user who identify an identification tag and in which read-out is possible. Although the record medium 
only for [, such as ROM and CD-ROM, ] reading may be used, since the contents of record are the 
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information showing a user's biological description and there is little risk of an alteration as a storage, it 
is possible for it to be also the storage in which write-in reading which can add and record the contents 
of dealings and new information is possible. 

[0026] It is desirable to have a high forged prevention function and big data volume, and to use 
especially, an IC card with high intelligent function and security function which carried the code system. 
Moreover, when using the IC card which carried CPU and RAM, the biological description data 
acquired from the user are incorporated in a card, if it is made to perform user authentication as 
compared with the data for enquiry memorized inside, the burden of an authentication use place can be 
mitigated and equipment cost can be reduced. Moreover, safety can be raised as the authentication data 
of a user authentication vote cannot be read from the exterior. 

[0027] in addition, the thing for which an IC card is used — a complex function - carrying - advanced 
him - it can be made the multiple use card which has an authentication function. The IC card used here 
may be a compound IC card which compounded the non-contact type which does not depend on the 
contact process and external terminal which are written with an external terminal, but is written by non- 
contact. Since especially the user authentication vote of this invention is not helpful even if it alters the 
contents of record when distributing and using information, it may use a more economical and simple 
floppy disk. Moreover, in addition to this, various kinds of record media which can be written in, such 
as CD-ROM, DVD, a tape, and MD, can be used. 

[0028] In order to solve the above-mentioned technical problem, moreover, the user authentication 
equipment of this invention The authentication vote reader which reads the information recorded on the 
user authentication vote, and the **** acquisition equipment which acquires a user's biological 
description data, It is characterized by having the judgment equipment which collates the biological 
description data currently recorded on the user authentication vote read with the authentication vote 
reader, and a user's biological description data acquired with **** acquisition equipment, and judges 
success or failure, and the display which outputs a judgment result. 

[0029] While applying a user authentication vote to an authentication vote reader according to the user 
authentication equipment of this invention If the user who was able to search for authentication inputs 
the biological description data of the same class as what was recorded on the user authentication vote 
through **** acquisition equipment Since the result of having collated the biological description data 
with which judgment equipment was recorded on the user authentication vote, and the biological 
description data acquired with **** acquisition equipment, and having judged success or failure is 
displayed on a display, even if it does not communicate with the exterior, it can recognize immediately 
whether you are a Shinsei user authentication vote owner. 

[0030] In addition, it is necessary to equip user authentication equipment with the **** acquisition 
equipment of the same class as the biological description data entry unit installed in a user registration 
place. What has a freehand drawing form incorporation function as **** acquisition equipment can be 
used. If the freehand drawing form of arbitration decided beforehand, such as a sign, is inputted as 
digital data using a freehand drawing form incorporation function, it will become possible easily to 
compare with the biological description data of a user authentication vote. 

[0031] Furthermore, as for the user authentication equipment of this invention, it is desirable to have the 
communication device which can communicate with an external certificate authority, to transmit some a 
user's biological description data [ at least ] inputted into **** acquisition equipment to an external 
certificate authority, and to display a judgment result for the judgment result of success or failure 
through reception and a display. By connecting with an external certificate authority and treating 
authentication data hierarchical, access and an alteration of a trespasser with malice are prevented and it 
becomes possible to have the high authentication capacity of safety more. 
[0032] 

[Embodiment of the Invention] Hereafter, with reference to a drawing, the detail of this invention is 
explained based on an example. The block diagram showing the example of the user- authentication vote 
which uses the block diagram in which drawing 1 shows one example of the user authentication system 
of this invention, the perspective view showing the example of the user authentication equipment which 
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uses drawing 2 for this example, and drawin g 3 for the block diagram of user authentication equipment, 
and uses drawin g 4 for this example, the flow chart showing the example of a procedure for which 
drawin g 5 publishes the user-authentication vote in this example, and drawing 6 are the flow charts 
showing the example of a procedure of the authentication in a use place. 
[0033] 

[Example 1] The user authentication system of this example has the layered structure which consists of a 
qualification registration authority, a certificate authority, and an authentication use place, as shown in 
drawin g 1 . qualification -- a registration authority (PRA) - one - authentication -- a network the 
whole -- generalizing -- a thing — it is - a licensee „******._ plurality ~ middle - a certificate 
authority (PCA) ~ two - a part - authority giving - a certificate publishing - authority - giving -- 
having had - middle — a certificate authority -- a sublicensee - ****** - plurality ~ an end — a 
certificate authority — (-- CA --) - three - a part -- authority - giving - a certificate publishing . 
[0034] an end — a certificate authority -- (-- CA --) - three - user authentication -- using - a client - 
becoming -- authentication -- use - a place - (-- TM --) — four a client -- service -- it is going to use - 

- a user eight — interceding - an engine - becoming . In addition, in the following explanation, use of 
various services may be expressed as dealings. In addition, the qualification registration authority (PRA) 
1 had the storage 1 1 separable from equipment, and the middle certificate authority (PCA) 2 and the end 
certificate authority (CA) 3 are equipped with the storage 21 and 31 always connected to equipment. 
[0035] These engines are connected by the dedicated line or the public line, respectively, and it has 
come to be able to perform informational exchange at any time. In addition, it is good also by 
connection using an intranet network or the Internet network. When exchanging information using these 
communication lines, it is desirable to secure insurance by performing encryption processing which used 
the public key and the common key. In addition, a middle certificate authority (PCA) is omissible when 
building a user authentication system. Moreover, in preparation for multistage, a hierarchy's depth may 
be larger than three steps about the middle certificate authority (PCA). In addition, it cannot be 
overemphasized that the engine which coalesced mutually may be made to perform functions, such as a 
qualification registration authority (PRA), a middle certificate authority (PCA), and an end certificate 
authority (CA). 

[0036] Generally the authority about fields which restricted the object, such as an administrative body, a 
medical institution, a specific company, an apartment house, and a shopping center (mall), is awarded to 
the end certificate authority (CA) from the qualification registration authority (PRA) or the certificate 
authority (PCA) of a high order, an end ~ a certificate authority - (-- CA — ) ~ three — **** — this -- 
authority — having - a field -- belonging - user authentication - using — authentication — use — a place 

— (-- TM --) - four - connecting ~ having -****. 

[0037] Various kinds of things [, such as a pay counter of a large-scale retailer and a bank / such as a 
window an automated-teller etc. of financial institution, ], such as each store, a department store, etc. of 
the door of the information machines and equipment which access the door of each window of a public 
office, subject reception of a hospital and chemist's shop reception, a lab, or a department-and-section 
room and the database which needs protection, an apartment inlet port, or a single room, the remote 
control of an indoor utility, the facility of membership system crab, and a mall, are one of the things 
applicable to the authentication use place (TM) 4. The user authentication especially in direct marketing 
serves as a future still more important technical problem, and the situation of installing the 
authentication use place 4 in each user f s 8 house is also considered. 

[0038] The end certificate authority (CA) 3 grants the authority to grant the authority to receive 
registration for the user 8 who is going to use the authentication use place (TM) 4 to the user registration 
place (RG) 5, and to publish the user authentication vote 7 in the authentication vote publishing office 
(IS) 6. 

[0039] The user registration place (RG) 5 is equipped with the input unit 51 which acquires the 
biological description. In this example, the online freehand drawing form input unit which consists of a 
tablet and a pen is used. If a hand is inputted from an online freehand drawing form input unit, since the 
information on a writing process can be incorporated together and can carry out image measuring, also 
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when an alphabetic character is inputted, for example, the information on the ability of each **** to 

have started [ in what kind of direction ] in which sequence etc. can be acquired easily. 

[0040] Moreover, when using a voiceprint as a means to catch the biological description, a microphone 

52 is equipped and voice is inputted. In addition, you may have the equipment which incorporates a 

fingerprint and palm print, and equipment which observes a pupil and incorporates the iris and a retina 

pattern. By using together two or more these people certificate means, **** can also be made more 

reliable. 

[0041] Authentication vote issue equipment 61 is installed in the authentication vote publishing office 
(IS) 6. Authentication vote issue equipment 61 writes in the information used for the user authentication 
vote 7 at ****, and grants it to a user 8. Although the IC card constituted the user authentication vote 
from the user authentication system in this example, other electronic recording media, such as magnetic- 
recording media, such as CD-ROM, a floppy disk, and a magnetic card, or a magneto-optic-recording 
medium, can also be used that what is necessary is just the record medium in which write-in read-out is 
possible. 

[0042] The user authentication equipment 41 which inspects Shinsei of the user authentication vote 7 
which the user 8 has, and attests a user 8 is formed in the authentication use place (TM) 4. Drawing 2 
and drawing 3 are drawings in which the example of 1 configuration of user authentication equipment 
41 is shown. I/O device 401 which exchanges the storage region and the information on the 
authentication vote 7 by which the slot which inserts the authentication vote 7 was inserted in the top 
face of user- authentication equipment 41 by being, the authentication level assignment equipment 402 
which specifies the depth of the authentication required of dealings, the **** input unit 403 which 
acquire a user's biological description data, and the authentication display 404 which display an 
authentication result are arranged. 

[0043] In addition, the **** input unit 403 is the same as the biological description input unit 51 used in 
the user registration place (RG) 5. Therefore, when using a voiceprint together to user authentication, it 
cannot be overemphasized that it is necessary to attach a microphone 42 also to the user authentication 
equipment 41 of the authentication use place (TM) 4. Thus, the **** input device 403 is equipped with 
the input device which suits in order to acquire it according to the class of biological information data of 
the user who uses. 

[0044] Moreover, the electronic circuitry 410 which combines these equipments organically and 
performs user authentication is built in the interior of user authentication equipment 41 . This electronic 
circuitry 410 consists of the authentication vote read write control unit 411, **** signal transduction 
equipment 412, judgment equipment 413, and a communication device 414. The authentication vote 
read write control unit 41 1 is equipped with the function to decrypt the digital data which read the 
contents of record of an authentication vote and was enciphered through I/O device 401, and to make an 
authentication vote memorize a dealings result again. 

[0045] Moreover, **** signal transduction equipment 412 changes into digital data the biological 
description data incorporated with the **** input device 403. Judgment equipment 413 considers the 
information which incorporated the print-out of the authentication vote read write control device 41 1, 
**** signal transduction equipment 412, and authentication level assignment equipment 402, and 
exchanged it with the certificate authority through the communication device 414 according to the 
authentication level needed, performs a user's personal authentication, and displays a result on the 
authentication display 404. 

[0046] Since a dealings result will be inputted from the contents input unit 420 of dealings and the 
contents will be displayed on the dealings display 421 if user authentication is performed and dealings 
are materialized, a user 8 can also check this. Moreover, the contents of dealings are recorded on storage 
422. In addition, a user authentication result may be made to be made to the contents input unit 420 of 
dealings by judgment equipment 413 as for acceptance or refusal of delivery and dealings automatically. 

[0047] Furthermore, dealings information is inputted from the contents input unit 420 of dealings, and 
you may make it record the contents of dealings, and dealings hysteresis on the user authentication vote 
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7. For example, it will pay, if the trade date, the purchase trade name, and the price are recorded when 
using the user authentication vote 7 for the settlement-of-accounts field, and the contrast check at the 
time becomes easy. Moreover, by the authentication vote for administration service, certification 
documents, such as a health insurance card, a driver's license, medical information, or a basic resident 
register, are received in the user authentication vote 7, and can be saved, moreover, the thing been 
contingent [ on user authentication ] when perusing the contents recorded on the user authentication vote 
7 - him — access of an except can be eliminated and individual privacy can be protected. 
[0048] In addition, the information which gave special implications is compounded besides the 
biological description data for using for right authentication, and you may make it use. For example, 
although dealings will be ordinarily materialized by closing motion of a door, the drawer of cash, etc. if 
a hidden notation is casually added to the sign of normal when it lapses into the situation which is 
threatened by a burglar, the blackmailer, etc. and cannot but sign against volition It seems that the 
structure which performs suitable treatment, such as the report having gone for coincidence also to the 
security company, and arresting a criminal in the place which changed into the condition that a user's 
insurance was secured, can be given. Giving a cough twice lightly etc. may compound and use the thing 
of a different class at the same time it considers as the biological description data used for such a 
purpose, for example, signs. 

[0049] Drawin g 4 is the block diagram showing the internal configuration of the user authentication vote 
which used the IC card. The user authentication vote 7 used by this example takes into consideration 
facilities for two or more publishers to install a shared terminal, and do mutual release together. 
Although the compound-die IC card equipped with both non-contact molds which communicate by the 
electrostatic coupling, electromagnetic induction, etc. without the contact mold which transmits an 
electrical signal through the connection terminal 71, the electrode 73 in a card, and the electrode in an 
authentication vote read write control unit contacting is adopted One of methods may be furnished. 
[0050] The communications control circuit 74 is connected to the connection circuit 72 and the non- 
contact electrode 73, and it connects with the memory to build in at the connection terminal 71. The user 
authentication vote 7 is equipped with the memory and CPU75 which serve as electrically random 
access memory RAM 76 and read-only memory ROM77 from eliminable programmable read-only 
memory EEPROM79 with programmable read-only memory PROM78 which can be written in, and 
mutual is connected by the bus. The connection circuit 72, the communications control circuit 74, 
CPU75, and memory can be held in one IC chip. 

[0051] The authentication vote read write control unit 411 can access the memory of the user 
authentication vote 7 through the non-contact electrode 73 to the communications control circuit 74 
through the connection circuit 72 from the connection terminal 7 1 , if the user authentication vote 7 is 
inserted. The data which ID to clarify was stored and once wrote in the publisher who published the user 
authentication vote in response to card authentication data and certification which are used in order to 
inspect the bona fides of an authentication vote to PROM78 cannot be rewritten. Record of the dealings 
using the biological description data used for a user's authentication or an authentication vote is stored in 
EEPROM79. Moreover, CPU75 is controlled to ROM77 and the program which conducts control of 
encryption, a decryption, and data I/O, bona- fides inspection of user authentication equipment 41, etc. is 
stored. RAM76 has the function to hold the data incorporated from the outside, and the data which are 
needed in an operation process temporarily. 

[0052] The user authentication vote 7 is distributed to each authentication vote publishing office 6, 
where the right card qualification information which it can guarantee that it is the proper card used for a 
system in the qualification registration authority 1 is written in PROM78. Therefore, the authentication 
vote publishing office 6 should just write some a user's biological description data in EEPROM79 based 
on the directions from the qualification registration authority 1. In order to make it not accept the 
alteration of a card, you may make it authentication vote issue equipment not equipped with the 
rewriting function of PROM78. However, memory allocation of the authentication vote in this example 
may record the biological description data for not being restricted above, for example, performing he 
authentication on PROM78 or RAM76. 
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[0053] One example of a procedure which publishes a user authentication vote using drawing 5 is 
explained. A registration application is received from the user 8 who wants the user registration place 5 
to receive service of the authentication use place 4 in the jurisdiction field (SI 1). At this time, the user 
registration place 5 acquires the information showing a user individual's biological description while 
hearing the information used for a user's 8 prequalification if needed (SI 2). What has the property which 
can be detected even if the biological description used here is peculiar to a user individual, and others 
are going to become the user by imitation, disguise, etc. and clear up is chosen. 

[0054] He is trying to identify in this example using a hand. Although the graphic form to input may be 
arbitrary, since differing whenever a user 8 inputs is out of order when attesting, in order to guarantee 
repeatability, it is usually desirable to make the sign showing a self name input. In addition, since the 
safety of authentication will improve if two or more biological descriptions are used, it enables it to also 
acquire the voiceprint using the microphone 42 auxiliary. A proposer's rating information and biological 
description data which were extracted in the user registration place 5 are transmitted to the qualification 
registration authority 1 (SI 3). 

[0055] The qualification registration authority 1 screens based on the information received from the user 
registration place 5, and permits issue of an authentication vote to those who passed (S14). Since 
qualifying requirements are decided according to the object using authentication, you may make it 
examine by the end certificate authority 3 which actually accepts a user. The qualification registration 
authority 1 divides a registered user's 8 biological description data hierarchical according to a 
predetermined rate, determines the part distributed to the certificate authorities 2 and 3 of the user 
authentication vote 7 and each phase, and distributes to every place (SI 5). 
[0056] The biological description data distributed to every place in the qualification registration 
authority 1 It is what is accessed based on the authentication precision which the authentication use 
place 4 requires. It enables it to attest only by the result contrasted with the authentication equipment 41 
of the authentication use place 4 when the dependability of most low degree was sufficient. When 
requiring the dependability of whenever [ inside ], considering and carrying out user authentication of 
the information stored in the end certificate authority 3 and requiring the most advanced guarantee, all 
the biological description data by which distributed storing was carried out are unified, and it is made to 
judge. 

[0057] Only when bona fides are inspected and it passes first in the authentication use place 4, the 
biological description data consist of user authentication systems of this invention so that a high order 
engine's authentication can be charged. In the certificate authority of a high order, authentication using 
the information on the part which is not in a user authentication vote is performed. Therefore, the 
information which can judge that he is the Shinsei user with a certain amount of accuracy must be 
distributed to the user authentication vote 7 by contrasting with the biological description data which the 
minimum user 8 inputs. 

[0058] In this example, we distributed about 60% of information to the user authentication vote 7, and 
decided to distribute 10% of remaining information at 30% of information, and the middle certificate 
authority 2 at the end certificate authority 3. Thus, by decreasing amount of information in series, the 
effectiveness of decreasing the time amount load which saves the storage capacity of the high order 
engine for which much authentication claims gather more, and authentication takes arises, and 
improvement in the information-protection engine performance as the whole system can be aimed at. 
[0059] In addition, when a more advanced guarantee is demanded, in order for the information sent to 
the engine of a high order not to become excessive, the one where the rate of the biological description 
data held to the user authentication vote 7 is to some extent larger is desirable. However, if the ratio of 
the information given to the user authentication vote 7 becomes excessive, the dependability of user 
authentication will fall. Therefore, it is necessary to take into consideration the number of users to 
connect, the safety of the authentication demanded, etc. in distribution of the biological description data, 
and to define the suitable division rate which suited actual conditions. 

[0060] The informational division approach may be divided as the information about **** in the middle 
of drawing with the information about the configuration which it finished drawing like a hand, and 
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information which followed the phase further like information, such as the order of making strokes in 
writing a Chinese character, although you may be the approach of predetermined coming out of the 
digital-information-ized data comparatively, and dividing physically. For example, a voiceprint can be 
divided into a frequency band, or each biological description, such as dividing a fingerprint for every 
finger, and recording and using for each, can be divided suitably, and can be used. In addition, two or 
more descriptions, such as a hand and a voiceprint, may be divided and used for every class which 
acquires and is different. 

[0061] When a magnetic tape, CD-ROM and a magneto-optic disk, DVD, or a removable hard disk 
recorded and saves the information about an authentication vote and a user for the mass storage means 
1 1 separable from equipment (SI 6) and the qualification registration authority 1 has a request from a 
low order engine, an official in charge refers for the information equipped with and registered into the 
regenerative apparatus. In the authentication registration authority 1, since the information record 
medium 1 1 is separated from an external communication circuit network at the time of needlessness and 
is kept using the dismountable recording device 1 1, the invasion from the outside and an alteration can 
be prevented. 

[0062] the individual biological description data distributed to certificate authorities 2 and 3 are stored in 
the alike and attached storage 21 and 31, respectively, and if needed, reading appearance of them is 
carried out at any time, and they are used. The authentication vote publishing office 6 records the 
biological description data of the registration proposer who received distribution in the user 
authentication vote 7 on which the card authentication code decided for every authentication vote is 
recorded from the qualification registration authority 1, and pays them to a user 8 (SI 7). 
[0063] in addition — one - a piece — an end — a certificate authority — (— CA — ) — three — plurality - 
user registration — a place - (— RG — ) -- five -- authentication — a vote - a publishing office - (-- IS --) 
- six - you may have . Since it must report to the user registration place 5 and the own biological 
description must actually be inputted, a user 8 is desirable because of a user's 8 facilities, when the 
authentication vote publishing office 6 which receives the published user authentication vote 7 is 
installed in the same location as the user registration place 5. 

[0064] In addition, it may be made to be contingent [ on the presence of the person who can set reliance 
for a user's 8 **** ]. However, no matter what device it may use, it is difficult to eliminate completely 
the case where became others from the start and it is clearing up. Moreover, in order to check the fact 
which the user who registers notified, not the method that publishes an authentication vote to a 
registration procedure and coincidence but the method mailed to the address behind may be adopted. In 
addition, the qualification registration authority (PRA) 1 may be made to have the user registration place 
(RG) 5 and the authentication vote publishing office (IS) 6. furthermore - user registration — a place - 
(-- RG --) - five - authentication ~ a vote - a publishing office (-- IS --) - six -- a function -- having 
had - a portable remote terminal - having had ~ a publisher - arbitration a location — setting - 
registration issue a procedure -- carrying out - things - being possible . Only those who received 
rating qualification of normal from the qualification registration authority (PRA) need to take care not to 
accept use of such a portable remote terminal, and it is constituted so that it can be begun and operated 
in response to the severe authentication as a publisher also here. 

[0065] Next, one example of the procedure which carries out user authentication by the user 
authentication vote 7 in the authentication use place 4 is explained using drawin g 6 . If a user 8 submits 
the user authentication vote 7 and offers dealings to the authentication use place 4, the authentication use 
place 4 will insert the authentication vote 7 in the card slot (I/O device) 401 of authentication equipment 
41, and will read the information for authentication. The information for checking the bona fides of a 
card and the biological description data for user authentication are contained in the information for 
authentication. 

[0066] The authentication use place 4 attests a card first (S21). Authentication of a card is Shinsei the 
user authentication vote's 7 being adapted for the user authentication system which the authentication 
use place 4 uses, and checking who a just possessor being. When the not corresponding authentication 
vote is being used, dealings are not received from the start. In addition, in order to check that the user 
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authentication vote 7 is not accessed unjustly conversely, it verifies whether authentication equipment 
41 is an own authentication vote and a thing by the program in the user authentication vote 7, and when 
it is not right authentication equipment, you may have the structure which refuses the indication of the 
contents of storage. 

[0067] The thing for which the same biological description as what was used when the user 
authentication vote 7 was acquired is displayed, such as writing and getting a sign from a user 8 on a 
tablet (person certificate input unit) 403, when it passes by card authentication, is searched for (S22). 
And the biological description data inputted from the tablet 403 are collated with 60% of biological 
description data currently recorded on the user authentication vote 7, and the user 8 of a window judges 
whether you are the Shinsei possessor of the user authentication vote 7 (S23). A user authentication 
result is displayed on a display 404 (S24). 

[0068] Procedures differ according to the success or failure of the user authentication in the 
authentication use place 4 (S25). When user authentication is denied, the authentication use place 4 
refuses dealings (S33). When user authentication is passed, it investigates whether the certificate 
authority of a high order should be further asked for online authentication (S26). When you do not need 
online authentication, you may accept the proposal of dealings immediately (S32). Whenever 
[ existence / of a demand of online authentication / or demand / of the depth ] may be made to be set up 
automatically based on the character of dealings, or the amount of the dealings amount of money, 
although an operator and a user 8 may input from authentication level assignment equipment 402 for 
every dealings. 

[0069] When you need online authentication, it sends ******** people certificate information to the end 
certificate authority 3 with the information and the **** input unit 403 of the user authentication vote 7 
with the demand of authentication level (S27). Since 40% of part is sufficient, for example, the **** 
information to send can cut down the amount of information which excepted the part used in the 
authentication use place 4 and which is exchanged between the authentication use place 4 and the end 
certificate authority 3. 

[0070] The necessity of online authentication is decided by the demand level over the safety of 
authentication according to the character of dealings. Since authentication safeer for dealings of the high 
goods of liquidity and large sum goods or disclosure of individual confidential information is needed, a 
high order engine's user authentication will be called for. Moreover, the depth of online authentication 
may be specified by the character of the authentication use place 4. in order to guarantee protection of 
privacy, and an exact therapy action at the window of a hospital - advanced him authentication is 
needed in many cases. In addition, in order to check that it is his data certainly with the home medical 
examination using a communication line, it is desirable to ask for user authentication to the certificate 
authority of a high order. 

[0071] In the end certificate authority 3, it collates with the **** information on a user's 8 proper 
currently recorded on storage 31 (S28), and an authentication result is sent to the authentication use 
place 4 (S29). Since it is recorded on the end certificate authority 3 30% of a user's **** information, 
when it runs short only by the user authentication in here, the middle certificate authority 2 of a high 
order is further asked for user authentication. Since 10% of biological description data are recorded on 
the middle certificate authority 2 about each user, the part used by the middle certificate authority 2 
among ******** people certificate information in the authentication use place 4 becomes 10%, and the 
amount of information which should be sent to the middle certificate authority 2 from the end certificate 
authority 3 decreases still more sharply. The user authentication result performed by the middle 
certificate authority 2 returns to the authentication use place 4 through the end certificate authority 3. 
[0072] A user authentication result in each place is synthesized in the authentication use place 4, and is 
displayed on the authentication display 404 of user authentication equipment 41. When user 
authentication is success, dealings will be accepted (S32), and in a rejected case, dealings will be refused 
(S31). (S33) Moreover, since there is possibility of some malfeasances, such as an alteration and 
spoofing, when user authentication is denied, it is desirable to send the information to the qualification 
registration authority 1, to check the whereabouts in question, and to analyze a cause. 
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[0073] Since it trespasses upon the qualification registration authority 1 from the outside or record with 
it difficult [ to alter ] is kept, it becomes clear by contrasting with the input data in the authentication use 
place 4 whether it is in that abnormalities are in the user authentication vote 7, or it is in the end 
certificate authority 3 or the middle certificate authority 2. When a disagreement is between the 
information which the contents and the user 8 of the user authentication vote 7 inputted, the case where 
the data of the case where the user who is not Shinsei is using it by the theft or finding, or a user 
authentication vote are rewritten by unjust access can be considered. 
[0074] 

[Example 2] The point that the user authentication system of this example differs from the 1st example 
Instead of carrying out with the logic unit formed in the authentication use place by contrasting the 
biological description data of the user who made it input with the biological description data recorded on 
the user authentication vote, and **** acquisition equipment Since it is only the point of having 
contrasted the **** information recorded as a user's biological description data by the calculation 
function in a user authentication vote, only a different part from the 1st example using the drawing used 
for explanation of the 1st example is explained here. 

[0075] CPU75, RAM76, etc. can be carried in the IC card used as a user authentication vote 7, and a 
fixed calculation function can be given to it. In the system of this example, if the user 8 who is going to 
use service inputs a user's biological information data in the authentication use place 4 using user 
authentication equipment 41, after changing this biological information data into the gestalt which 
carries out predetermined processing and is easy to carry out digital processing, it will send to the user 
authentication vote 7. 

[0076] The user authentication vote 7 once memorizes the inputted information data to RAM76, and it 
compares and compares both, reading this information data and a just user's biological information data 
currently recorded on EEPROM79 by CPU75. Consequently, refusal is notified, if human being for 
whom both are in tolerance, are similar to, and are going to use service can attest the just owner of the 
user authentication vote 7, and success will be notified to the authentication use place 4 and it will not 
pass to this authentication. 

[0077] The authentication use place 4 will provide a user 8 with desired service, if satisfied with the user 
authentication result of the user authentication vote 7. Furthermore, when you need prudent user 
authentication, it refers to the end certificate authority 3 or the middle certificate authority 2, and it 
judges together with the result. In addition, it cannot be overemphasized that the authentication use place 
4 may serve as the end certificate authority 3. If what is similarly used for authentication of a low order 
level is having illustrated in the 1st example although the rate of distributing biological information data 
to every place was arbitrary at a big rate, the burden in a communication link becomes light and it is 
advantageous on employment of a system, and it is desirable to make the rate in the user authentication 
vote 7 60% or more. 

[0078] Collapsibility use of the obstruction for participating in a system can be made easy to carry out 
low, since the burden on the operation of user authentication equipment 41 is mitigated, the cost of 
equipment can be reduced by utilizing the user authentication vote 7 which consists of a highly efficient 
IC card in this example and the costs needed for preparing the function of the authentication use place 4 
become small. Moreover, since information processing is completed within a user authentication vote, as 
the memory of an authentication vote can be accessed from the outside, twist and read, an improper field 
is prepared, important information, such as authentication data, is recorded here and leakage is 
prevented, safety can be raised more. 
[0079] 

[Effect of the Invention] If the user authentication system of this invention is used as explained to the 
detail above When collating the biological description data in the **** information which a user inputs 
directly in an authentication use place, and an authentication vote and wanting a more advanced 
guarantee, in order to transmit a part of**** information to the certificate authority of a high order and 
to carry out user authentication, The user authentication corresponding to the demand level of safety can 
be obtained without performing the great portion of information processing in an authentication use 
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place, and covering a big load over a communication circuit. Moreover, construction of a very strong 
user authentication system is attained to invasion by dividing **** information. 



[Translation done.] 
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* NOTICES * 

JPO and NCIPI are not responsible for any 
damages caused by the use of this translation. 

l.This document has been translated by computer. So the translation may not reflect the original 
precisely. 

2 **** s j 10WS t k e wor d which can not be translated. 
3. In the drawings, any words are not translated. 



DESCRIPTION OF DRAWINGS 



[Brief Description of the Drawings] 

[Drawin g 1] It is the block diagram showing the user authentication system of the example of this 
invention. 

[Drawin g 2] It is the perspective view showing the example of the user authentication equipment used 
for this example. 

[Drawin g 3] It is the circuit block diagram of the user authentication equipment in this example. 
[Drawing 4] It is the block diagram showing the example of a configuration of the user authentication 
vote used for this example. 

[Drawin g 5] It is the flow chart showing the example of a procedure which publishes the user 
authentication vote in this example. 

[Drawin g 6] It is the flow chart showing the example of a procedure of the authentication in the use 
place in this example. 
[Description of Notations] 

1 Qualification Registration Authority 
1 1 Detachable Storage 

2 Middle Certificate Authority 
21 Storage 

3 End Certificate Authority 
31 Storage 

4 Authentication Use Place 

41 User Authentication Equipment 

5 User Registration Place 

51 **** Input Unit 

52 Microphone 

6 Authentication Vote Publishing Office 
61 Authentication Vote Issue Equipment 

7 User Authentication Vote 
71 Connection Terminal 
73 Non-contact Electrode 

8 User 
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DRAWINGS 
[Drawin g 1] 




[Drawin g 2] 
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[ 0 0 5 2 ] a-i^ggaEs 7 li^SgHfl i T't^rA 

tr-*- Kls*lfi*B*P ROM7 8 ^S^^/cttSr-S 

@T 6 1 ^ I ^ 6 © iSS tc * t: ^ - If ©±ft 

^Wl*ftr-»©-aBJ&E E PROM 7 9cc§*iM>li 

a^t7«BitPROM7 8©S»Sft^««64rfl^.4^J: 

«>©4«9Wj»«r-^?:PROM7 8*6^«RAM 
40 7 6<CIE»UCibA^p 

[ o o 5 3 ] mmitxx-ymmm&mytz^m 

©!8liEttfflW4©^--t'^S:*W*C£*Rt'-Sa-^ 
83.-6g&«ig*ftWWtf * (S 1 1 ) • C©Ba-f 

M^^f ^>££*>oc, a-^iiA©^^^^^^ 

^HttcciswcA-sr, flSA^iai»^>asafttt 

£ -<C ^ 0 <-© a - -^ic rjr D -T * ^- ^ i b "C fttt C £ 

50 ^c^^^^^ttw^wr^^co^ssn^. 
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[ o o 5 5 ] mizmm i *-irm§8is ;**>sw 
rteffiSKWfetf^ftBjr^ (s i 4) . is-ttaftasfflE 

SMI It, S^i-^8«C'±«9^B«J4«afer--5f^fiif* 
f £ ( S 1 5 > . 

[ o o 5 6 ] vexmm i -cssf cc^ibs nfc*e^m 20 

*tBSl*SsIWfflfiff4©KE»g4 1 TrWfiBL/fcltmK 
W-CigSEr * £ <fc ^ . 4 s *0>fi*f;l4«:f!*T -S £ * 
li^jsISsEH 3 K$«ps $ ft JB"J* t/Ti- If iHE 

I/. «fciSK©f«Et**1-&»^ttafttttt3ftfc^: 

[0 0 5 7 ] #&W<W-1fSKS/;*?\kr't*. 
^fflr-^«W«>ccgSiEMS^r4-CSjE<l4ttfit/'T: 30 

Stf <& o -b<4«> s«SE tRBia *C i* ^ - 17 rSiEX CC & c > 8|i»G> 

S'hR-a — F 8 #AA? £ 4*3Wf* «r - $ t Wtr 
& C <L K J: 0 * -SSftQSBft-cAiEA C ± # 
t'UlfrC * «E<H,'C tefc w ttft tftt ^>rjrc^ 
[ 0 0 5 8 ] **ftHr'i*W6 0 *6©1S«£ a— tflS!E 

mc *>vmKm&m> 2 * 0 , ^ * r a 

1 0 0 5 9 J a 4a, J: #J *!S&£HE£ KM £ nfc «L * cc 
-?'Ctf, WttT^i-^JS^RSSn-SSSEQic^ltfe 50 
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si 1 &mi>x . ««ia«sa<* 1 1 a^icc^<i^ 

[ 0 0 6 2] tmm 2 % 3 iCETff $ ftfcffi AG>41»W 
ftiSlif-^li:«n^nccttB , «'*SBl«aa2 1 . 3 ! 
te^ 3 n««K l£L/ r HBia*ffi <./'t *y^^ *. KES 

§Mnr^^-^i8sEs7ccgggfigsw 

^8^xft-r* <S 1 7) . 

[ 0 0 6 3] ^4a, 1 m<Oti&^M.m < C A ) 3 iCftfc 
<Z>a-^g5l^f <RG> 5<tMES^t7fiff { i S) 6£ 

TOC g#^1$J^m$&£ A^ L/WW ftiilw #3>^c^ 
r-. ^T$nft:^-lflsEm7 *Sti 9c*!SfiEM^fTfl»T 

[ 0 0 6 4] i-1f8©A*©fc^fS^4aW& 
tbt&L Men 0 ^ S t/C <r ^ii^^^ccg^-T ^ C 

A) 1^-^^ {RG> 5iKiiEglftft« < i 
filr (RG> StaKEHStfK { i S) 6<^>«te€:«^fc 

ft»fflia*&« o fcftfta^e suffice ^ c mm 
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^tUXOmnvmtZ&ttX^toX&fEXZZ&l 

[006 5] XK, Hae^ffiC^TT, KII«fflflif4Kfe^ 
"Ca - HISSES 7 tc J: 0 * -*?!2!E£ ?h^B<0 1 ^£ 

4 KR§ I £ $0 tH * <L . £S!Ef<Jffij*r 4 It *-©!BEg 
7SSSfiiEjSS4 ^ <Affi*SB> 4 0 

[ 0 0 6 6] ISlEWBeH fcttW&Kl* - K<Z>!£M£^ 
(S £ 1 } o K^sSiiEi*, i-1fiSsiEil7^!«IEH 

«w 4 Kaffir * -yimi'X r utcmss? h %±.n 

ISaiEs7*(Dyo^^A(C«fcOISgEaB4 I^SftcoS. 
!EM <L*ttST & h a-'£lftKl/ 'C , IE U >fS!Egft 

[0 06 7] *-KSfiE 4 C^ttL/fei*tclt t 
cc*7'u? h < AfiEAA&B) 4 0 3±^-Y>=£w^ 

2), *-l,r. h4G3*>fcAAl/fc£«Wj 

$ &a - ifggsEs ? tcis3i$ nr c * fcpj * t* 6 

#a — USSIER 7 fl>.SjE^M##3!»^«:*lieT * { S 
2 3 > o ^--■^l8siH4.»3:*jnS.S4 0 4 tCf^*T& 
(S£4) o 

[ o 0 6 8] immmmAicwih^-ymtm^z 
Wt^mtm* z> ( s 2 & > o JL-ifigaEAssgsnft: 

ttfc*iS5Ef<Jfflm4liroi«:!iE«T'5 (S3 3) . 
IfigHCC^rteOfci * 1*3 ^cc±tt©|ggE»raK * > 7 
^ W£jE£*#£^*^S^£P^£ (S26> , 

««AnrJ:c* (S3 2) . *>7^>SBSEfl>fi*fl>ff 
«*as©R*S(i»5l8^iSsE l'*oMSe«B4 0 2 
^6 U- »^i-^8 '&Kh OX i> J: toOV B?l© 

[ 0 0 6 9 ] * > y 4 >Vm&&&LT&i&iftt. WM 
u ft tc jl - ^HB5 7 <£lSt8 I Afi A*« 

B4 0 3 t?BM# U fc AffilfftB <t «r*ai8sK 3 lc 

6(S27), s(t^&AB»sii. mmmm4vn 

[0 07 0] *>?^>SM5$>»5«. SlllOlittccse 
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io i&OSSHJiiSr'i-lfsSIE^^Ji^^-r^C 

[0 07 1] *«i2SEH3*Ctiia«*B3 i tciais^n 
rc^i—^ScawwABttaiH^l/f (S2 
8 ) . !SsEi|4*^i2sEHffi«4 icmtith ( S 2 9 ) □ 
^WiSsEH 3 ^ tin - *?<0 AsEtt«© 3 0 % UMaiiS 
n*CC^jr^(7>T*. C CtCfeW&i-lflglEKW'Cfca^S 
f^ia^ii, 3^cc±&©*iaiS!E^£K:i--ifl«gE& 

Q&iffl&Sk?- »*E»u*cife&©'C. ssEHffljK4 r- 

20 Kff 1/fcAaEISfflO^ fe+PJSfiEHSX'ttS^-SSKJtt 
! 0 U *J . *^!^!E^ 3 ^ *ffiraEB 2 <C isttf 

[ o 0 7 2] &mo*~irmm&\LmMmmfi4vm 

£2 tlX i-tf ISSESS4 1 ©sSsES^SftB 4 0 4 tc^ 
i^^o JL— *f!«fiE?!>^tt©m&i*WII*ft«An 
( S 3 2 ) , ^^Wl^^ll^rgS ( S 3 3 > th 
CUCUh (S 3 1 ) « ttz* i-tfag!E^5S3nA: 

i o 073] mizmm i ^i^f»6(f ao*c o<^s 

fi^4 W & A*r - 4f £ mtt & C t cc J: 0 . 

^-irmim? vt*>ho>&. *aisiEJ^3 tcab^©^, 

SliEIX 7 <^)rt^ i jl 3 ;^AA i-^dS^fel^ Ofi/ys 
40 -Bii^^>a -^ISIESC^'- ^ r ^ 42 ^ 
[ 0 0 7 4 ] 

[Wmz\ **tt«<Da-^SS!Et^-7"A^*I©!* 
ftPJ^prjr&iSi*, ffitE*Jffifi)TCCS^fca&]lja[JS«B"C 

jl - i«gfiEgite o tc&s&tmw $ t Kmsm 

-IfCC^^^r- 5f iea^3nrc,\fiEftffli«:*l' 

50 tfEfWcc'Sftwccieffli/fcigia^^rs 1 **«i»«f * 
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4MS =£ 1/ r r £ JUa&il U t ^SK-SI* Ofclr .a. 

[ o 0 7 6] x-ymm 7 tiA^s nfc»«^ - * * io 

- S R A M 7 6 KgEtt. 0 . C P U 7 5 'C C Of«B * 
i E E P ROM? 9 tCi2&3ttTt'&iES*-1f©*4» 

*rii*flU C©igsECC.»t* U&*mtf}g«*il*fl?& 0 
[ 0 0 7 7 ] iSSf<jJQgfr4 ISIESI7 

©CSi'T^* ft filacer &£ii<f Kfctf -SSfiA* < ft 0 
I 0 0 7 8 ] **«E«Ti*. AtRlfe I C*7- K^*>ft& 

[ 0 0 7 9] 40 
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i^SlB' A fA^t *fti#. SSSEflffii?? tC I i£$CC 
SEHfc AfiEtHIBC— gS 1/ r * - 1tW8L&? h tc 

». ■\$mmc>±B$&imnmpAxtf^xmm% ( ic. 

Utc^-VmUZW&Ck frX'Z AIE1S«& 

[B 1 ] *«B^€'.«ftE«©a--i^gg|iE^Ar A^^y 
[02] -^teffltcSC^ti^i-lflBEffiScC'ffl** 

[04] *^afflccttJgr^i-^KiiES©#«Wl«:* 
[05] *^ttfltC*jW-5a-^ggiiim«:«T , r'S#JB 

[06 ] -^SPRcfc^s^^cc^o^^EO!:'*J^ 
1 1 tottUHiteftiattaB 

2 cMaiSIEH 

2 i gauss 

3 ^ffisSSEJIi 

3 i lats^iS 

4 BSEWSiS 

4 1 JL-«7ffiiESEe 

5 ^-IfgH^! 

5 1 A!EA*SB 

5 2 W£>u*> 

6 mmmi&i 

6 1 ISSEgStisSE 

7 3~—VZ£MM 

7 1 Muas^ 

7 3 
8 
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[MiE#ft9rg«] 8m<o%M 
[ttiE*St] «I 
[KfiErt&] 

[ % ] ^ —FSSSES.'* r t a - tPeSSEft 

g 

[^|B9jE2 J 

[ttiErt*] 

-if ictt u x z <c±m%&m&r~ » cp 5 »ta g nfo 

t^-tftD^tt^Wfttt? 7 - £ bhtrth ASEKffiSig 
fcggfEWffidr *^^ 

a<> ^Magga tciai* b x c . a asEWfflgf cc 

fee * *C RflESIiE Sa*St *J ft B "CSS* t h ^ - 1??gIiE3i<Z> 

wm wffl jff a> 6 csfig^ cc it r Euia^ - gggEa ic t * 

[15*312] afgagffiWffiflf Kfett &§g§E(Pfcftg>jli> 
[ lg*3g 4 ] hWB 2 J:<PBggija*, 8iSBS«»rK 

- if issE raife L/ & c & » « u x im l x h c - 

f. &S5SEns^RfSBiSliE*iJffl^r *> K t«!&G>KliEMA> 

«B» L/C ISSET & <fc 5 tc I, fc c i *ft»4 r &a 
aftH 1 ^6 3g'<>*rn^g fa3tt<0^-1faBSE^ 

[15*315 ] mt* -If IgfiE^A^ Atf^Bg^C 
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3i i & t, - 1/ »rnM: ia$x<o^ - ifisiE ^ B 

[15*316 ] BMaKaffJ^^to^&^tt^ft^ay- £ 
0 m h C t *«ffl 4 T ^>I5*31 5_!a^0C-^ - 

3i i *-.6^^»rn*>tci2at«>^--ifiSiEVA^ a 0 
[ig*3i8 ] $ t ux&nvb 

<DZ Mik U X . fttc 5 cc £ 0 gfr & |£?t 
JL— IfggaE^^o 

A/jT^> AaEKff 4 . mmMMMm 0 SB'CK* 

k o tc*-yimmc&m s nr t - a i^^i^r - 
£ <t a?ia ASEWsssigic a /j $ nfc^ia - w*«9^ 
«»«r - £ £ J±« 0 r s^n^Tzn^BM t , A 
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[15*31 1 o ) i!riBAiiEg»^g»^s^ia»g*j 3A 
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m%m&&mitcmmm?A t , sBByja^^-igtgg 
ft re-ctf ft sftfc j>& < ^ i flKDisHa &ffla. . ga 

gr(g 4ai * T%ff I fc a. -if cp^ft^W4»8ft^ - » €■ 0 

^ - if agg(g Bi& 0 tec >»9»isg^cc§asi u -c ^ c ^ 
r. tggEWfflag-ajEiiigBOgg'c§gj»<b 

IS5H<0iaiW« t AtEKSSfig U A: i - If 

ft^ iWSttT 6 - * * tbiST s c i tc & o - ^rfiisr ^> 
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